Is there any way to use WireShark as a Protocol Analyzer only and disable the hability to "sniffing" the network?
My idea is to relase the software for some engeneer people here but I don't want then to grab new data, only to analyze "already captured data" for Wireshark.
Is that possible?
Don't install the actual traffic capture software, e.g. WinPCap for Windows. For other platforms you could either remove the capture software, e.g. lipcap on linux, or restrict their access to it.
answered 28 Jan '13, 09:10
Based on your comments to grahamb regarding WinPcap, it looks like you're looking for a solution on the Windows platform. In that case, in theory you could compile and release your own installer without capture support, paying special attention to the following paragraph from
Unfortunately, just commenting out
So this looks like a bug that needs to be fixed first before this could be an option for you.
answered 28 Jan '13, 10:45